$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: +h2OIV45k9IMNmhDrlIF5o27fKX07HhXCAJxexuPVfw= Subject key identifier: 5D:6B:23:5A:51:EA:3D:E6:B2:01:0E:7B:0D:C1:1E:52:0F:1D:A0:D4 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 3588D86D1D2A30BEA5A1990CF9B722C1063082D5 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa Signing time: Tue 24 Sep 2024 02:00:01 +0000 ROA not before: Tue 24 Sep 2024 01:55:01 +0000 ROA not after: Tue 23 Sep 2025 02:00:01 +0000 asID: 131745 IP address blocks: 210.247.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:88:d8:6d:1d:2a:30:be:a5:a1:99:0c:f9:b7:22:c1:06:30:82:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Sep 24 01:55:01 2024 GMT Not After : Sep 23 02:00:01 2025 GMT Subject: CN=5D6B235A51EA3DE6B2010E7B0DC11E520F1DA0D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:17:88:f7:56:1d:05:52:64:ba:4a:0d:ff:61: ec:ef:79:04:5a:51:dc:bc:11:58:42:8e:4f:54:81: 9f:cc:43:6a:6d:25:1a:df:7e:10:7c:e0:7c:4f:c3: 4c:f1:e4:0b:8f:8d:86:23:35:ca:fd:40:44:9c:eb: f1:e7:51:b0:0e:18:b1:f1:84:4b:ec:1a:7f:4a:d6: b4:7c:74:52:1a:1a:93:2b:e7:bc:76:74:d0:0b:d8: c2:c9:86:d2:5e:c3:e1:cd:e8:d2:b6:9c:33:09:c4: 4b:28:e4:63:9f:c3:bd:9b:4d:b6:80:61:b2:79:96: 7b:bb:b0:27:f9:26:d4:a6:2b:48:3c:c5:df:cc:f9: 5c:6c:bc:2b:6b:15:3b:6b:90:9d:97:76:6c:56:fb: 41:6d:9c:73:d2:b1:38:f0:a7:22:d7:03:d6:53:cc: a3:98:17:b3:bf:ae:9d:c5:6f:17:76:7d:a2:5f:86: 63:a3:34:dd:fb:0c:3b:b9:72:fa:8e:e2:d5:44:9d: 96:51:86:67:26:32:2a:f8:f5:06:79:1e:48:9d:02: e3:3f:aa:a7:6e:ae:bb:8f:de:ee:0c:e2:17:4b:f3: 46:80:f1:88:4f:92:5b:70:51:73:86:b4:fe:4a:47: 21:be:f7:42:67:9a:f7:5e:74:61:59:4a:06:5f:57: 24:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:6B:23:5A:51:EA:3D:E6:B2:01:0E:7B:0D:C1:1E:52:0F:1D:A0:D4 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.252.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:6b:18:df:55:7f:e4:a1:ce:dd:99:d7:86:65:87:2d:c5:b1: 6c:25:ce:bc:fd:68:5f:17:7c:bb:f3:a0:66:4c:74:2a:c8:37: 17:68:98:8a:43:dd:ad:6d:52:99:e4:52:8a:88:dc:87:ff:09: ca:5c:63:97:90:b0:2a:ea:49:5d:f0:9b:ea:37:20:4b:c3:c4: c2:24:89:bf:c1:3b:f2:d2:9b:de:98:62:91:02:5b:99:67:e5: 13:a2:ef:ec:75:45:f4:f4:4e:9c:f3:95:19:f1:a1:0b:2e:b0: 5a:42:97:a6:f9:14:95:a7:02:be:bf:07:ee:ac:92:f5:39:6a: 1c:0f:9f:b8:32:23:8b:9c:13:88:08:00:15:f9:1a:10:31:28: a5:e5:18:97:c5:6a:34:ce:69:c3:30:6e:0f:64:d1:42:4e:a1: 0f:2b:b3:ec:56:20:00:5e:da:ac:f2:a4:38:b7:7b:88:a0:94: 84:5d:ac:d5:2a:d0:d4:37:a9:e3:87:ec:90:03:84:af:5e:a8: 89:26:eb:68:e3:da:1b:f1:f8:81:9e:94:07:79:44:0a:6f:bb: db:c2:c4:6b:9f:b6:85:9e:b8:b3:a1:07:9e:9d:a3:6c:52:f6: 68:95:32:b7:15:a6:e8:07:d7:d1:00:13:c9:16:ae:03:22:3b: 68:27:f6:22 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNYjYbR0qML6loZkM+bciwQYwgtUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNDA5MjQwMTU1MDFaFw0yNTA5MjMwMjAwMDFaMDMxMTAvBgNV BAMTKDVENkIyMzVBNTFFQTNERTZCMjAxMEU3QjBEQzExRTUyMEYxREEwRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJF4j3Vh0FUmS6Sg3/YezveQRa Udy8EVhCjk9UgZ/MQ2ptJRrffhB84HxPw0zx5AuPjYYjNcr9QESc6/HnUbAOGLHx hEvsGn9K1rR8dFIaGpMr57x2dNAL2MLJhtJew+HN6NK2nDMJxEso5GOfw72bTbaA YbJ5lnu7sCf5JtSmK0g8xd/M+VxsvCtrFTtrkJ2XdmxW+0FtnHPSsTjwpyLXA9ZT zKOYF7O/rp3Fbxd2faJfhmOjNN37DDu5cvqO4tVEnZZRhmcmMir49QZ5HkidAuM/ qqdurruP3u4M4hdL80aA8YhPkltwUXOGtP5KRyG+90JnmvdedGFZSgZfVyRRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXWsjWlHqPeayAQ57DcEeUg8doNQwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/wwDQYJ KoZIhvcNAQELBQADggEBAJxrGN9Vf+Shzt2Z14Zlhy3FsWwlzrz9aF8XfLvzoGZM dCrINxdomIpD3a1tUpnkUoqI3If/CcpcY5eQsCrqSV3wm+o3IEvDxMIkib/BO/LS m96YYpECW5ln5ROi7+x1RfT0TpzzlRnxoQsusFpCl6b5FJWnAr6/B+6skvU5ahwP n7gyI4ucE4gIABX5GhAxKKXlGJfFajTOacMwbg9k0UJOoQ8rs+xWIABe2qzypDi3 e4iglIRdrNUq0NQ3qeOH7JADhK9eqIkm62jj2hvx+IGelAd5RApvu9vCxGuftoWe uLOhB56do2xS9miVMrcVpugH19EAE8kWrgMiO2gn9iI= -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org